nerdexam
CompTIA

SY0-301 · Question #798

A security technician needs to open ports on a firewall to allow for domain name resolution. Which of the following ports should be opened? (Select TWO).

The correct answer is C. TCP 53 E. UDP 53. DNS (Domain Name System) operates on port 53 for both transport protocols. UDP 53 is used for standard queries because it is lightweight and fast. TCP 53 is used for responses larger than 512 bytes (e.g., DNSSEC records) and for zone transfers between DNS servers. Both must be op

Security architecture

Question

A security technician needs to open ports on a firewall to allow for domain name resolution. Which of the following ports should be opened? (Select TWO).

Options

  • ATCP 21
  • BTCP 23
  • CTCP 53
  • DUDP 23
  • EUDP 53

How the community answered

(23 responses)
  • C
    96% (22)
  • D
    4% (1)

Explanation

DNS (Domain Name System) operates on port 53 for both transport protocols. UDP 53 is used for standard queries because it is lightweight and fast. TCP 53 is used for responses larger than 512 bytes (e.g., DNSSEC records) and for zone transfers between DNS servers. Both must be opened to ensure full DNS functionality. TCP 21 is FTP, and TCP/UDP 23 is Telnet - neither is related to DNS.

Topics

#DNS#port numbers#firewall rules#TCP UDP

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice